[SECURITY] [DSA 2337-1] xen security update

2011-11-0608:21:43

lists.debian.org

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Debian Security Advisory DSA-2337-1 [email protected]
http://www.debian.org/security/ Thijs Kinkhorst
November 6, 2011 http://www.debian.org/security/faq

Package : xen
Vulnerability : several vulnerabilities
Problem type : local
Debian-specific: no
CVE ID : CVE-2011-1166 CVE-2011-1583 CVE-2011-1898 CVE-2011-3262

Several vulnerabilities were discovered in the Xen virtual machine
hypervisor.

CVE-2011-1166

A 64-bit guest can get one of its vCPU'ss into non-kernel
mode without first providing a valid non-kernel pagetable,
thereby locking up the host system.

CVE-2011-1583, CVE-2011-3262

Local users can cause a denial of service and possibly execute
arbitrary code via a crafted paravirtualised guest kernel image.

CVE-2011-1898

When using PCI passthrough on Intel VT-d chipsets that do not
have interrupt remapping, guest OS can users to gain host OS
privileges by writing to the interrupt injection registers.

The oldstable distribution (lenny) contains a different version of Xen
not affected by these problems.

For the stable distribution (squeeze), this problem has been fixed in
version 4.0.1-4.

For the testing (wheezy) and unstable distribution (sid), this problem
has been fixed in version 4.1.1-1.

We recommend that you upgrade your xen packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian6amd64libxenstore3.0< 4.0.1-4libxenstore3.0_4.0.1-4_amd64.deb
Debian6i386libxenstore3.0< 4.0.1-4libxenstore3.0_4.0.1-4_i386.deb
Debian6i386xen-hypervisor-4.0-amd64< 4.0.1-4xen-hypervisor-4.0-amd64_4.0.1-4_i386.deb
Debian6i386xenstore-utils< 4.0.1-4xenstore-utils_4.0.1-4_i386.deb
Debian6amd64xen-utils-4.0< 4.0.1-4xen-utils-4.0_4.0.1-4_amd64.deb
Debian6i386libxen-dev< 4.0.1-4libxen-dev_4.0.1-4_i386.deb
Debian6amd64xenstore-utils< 4.0.1-4xenstore-utils_4.0.1-4_amd64.deb
Debian6i386xen-hypervisor-4.0-i386< 4.0.1-4xen-hypervisor-4.0-i386_4.0.1-4_i386.deb
Debian6amd64xen-hypervisor-4.0-amd64< 4.0.1-4xen-hypervisor-4.0-amd64_4.0.1-4_amd64.deb
Debian6allxen-docs-4.0< 4.0.1-4xen-docs-4.0_4.0.1-4_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	6	amd64	libxenstore3.0	< 4.0.1-4	libxenstore3.0_4.0.1-4_amd64.deb
Debian	6	i386	libxenstore3.0	< 4.0.1-4	libxenstore3.0_4.0.1-4_i386.deb
Debian	6	i386	xen-hypervisor-4.0-amd64	< 4.0.1-4	xen-hypervisor-4.0-amd64_4.0.1-4_i386.deb
Debian	6	i386	xenstore-utils	< 4.0.1-4	xenstore-utils_4.0.1-4_i386.deb
Debian	6	amd64	xen-utils-4.0	< 4.0.1-4	xen-utils-4.0_4.0.1-4_amd64.deb
Debian	6	i386	libxen-dev	< 4.0.1-4	libxen-dev_4.0.1-4_i386.deb
Debian	6	amd64	xenstore-utils	< 4.0.1-4	xenstore-utils_4.0.1-4_amd64.deb
Debian	6	i386	xen-hypervisor-4.0-i386	< 4.0.1-4	xen-hypervisor-4.0-i386_4.0.1-4_i386.deb
Debian	6	amd64	xen-hypervisor-4.0-amd64	< 4.0.1-4	xen-hypervisor-4.0-amd64_4.0.1-4_amd64.deb
Debian	6	all	xen-docs-4.0	< 4.0.1-4	xen-docs-4.0_4.0.1-4_all.deb